Purpose:The OT Security Analyst will work closely with the OT Security team, provide day-to-day operational support for OT environments, act as an internal SOC team member, and complete Security-related projects as directed. 5-10 years of security experience and or a combination of OT experience is an asset.
Main Responsibilities & Activities:- Provide tier 1 & 2 day-to-day security operations support.
- Participate in reviewing and analyzing security-related events, assessing criticality and priority.
- Create new processes and workbooks to automate and streamline investigative processes.
- Work with SIEM technologies to ingest new data sources, run advanced correlation. processes, create new content, and use visualization and automation techniques.
- Manage logging from various sources with the goal of gaining better visibility and insights.
- Maintain compliance with industry standards and government regulations, ensuring security and reliability in automation systems.
- Assist in the development of tools to monitor network security protocols and overall performance.
- Familiarity with OT specific protocols such as Modbus and CIP.
- Manage the ongoing enforcement of security policies, standards, and procedures.
- Able to identify vulnerabilities and recommend mitigations.
- Update hardware and software asset inventories.
- Ensure proper IT-OT network segmentation to prevent lateral threat movement.
- Deploy and integrate Endpoint Detection and Response solutions across OT environments.
- Deploy, configure, and manage secure network segmentation initiatives.
- Understanding the distinct differences between IT and OT.
- Familiarity with firewalls and network segmentation.
Knowledge, Skills & Abilities:- Ability to analyze, collaborate, and communicate within cross-functional team.
- Associate Diploma or Bachelors of Science degree in Computer Science or Information Technology related program.
- Basic understanding of computer hardware, software and network concepts.
- Experience with scripting language such as Python or PowerShell.
- 5-10 years of experience as a security analyst, or similar.
- SSCP or CCSP level knowledge/experience (certification preferred).
- Independently motivated individual with analytical and problem-solving abilities.
- Self-starter capable of working independently with minimal supervision.
- Exceptional abilities to troubleshoot and collaborate to resolve incidents.
- Strong documentation and communication skills is required.
- Team player capable of learning and contributing to shared projects and goals.
- A trustworthy individual, capable of safeguarding confidential information.
- Oil and Gas & Operational Technology (OT), ICS and SCADA experience a benefit.